PP OVERVIEW

This U.S. Government Traffic-Filter Firewall Protection Profile For Medium Robustness Environments specifies the minimum-security requirements for network boundary devices that provide controlled connectivity between two or more network environments (hereafter referred to as the Target of Evaluation (TOE)) used by the Department of Defense (DoD) in Medium Robustness Environments. The TOE may be a dedicated device such as a firewall, or an enhancement to some other network device such as a router. The target robustness level of "medium" is discussed in Section 3.0 of this PP.

The TOE supports user identification and authentication (I&A) where "user" is defined to be a human user acting in a role (i.e., Security Administrator, Cryptographic Administrator, and Audit Administrator) or an authorized IT entity. The TOE provides the capability to pass and block information flows based on a set of rules defined by the Security Administrator. The TOE supports encryption for remote administration and authorized IT entities (e.g., certificate server, NTP server), and generates audit data of security relevant events.

The assurance requirements were originally based upon Evaluated Assurance Level (EAL) 4. In order to gain the necessary level of assurance for medium robustness environments explicit requirements have been created for some families in the ADV class both to remove ambiguity in the existing ADV requirements as well as to provide greater assurance than that associated with EAL4. The assurance requirements are presented in Section 5.3.

This PP defines:

assumptions about the security aspects of the environment in which the TOE will be used;

threats that are to be addressed by the TOE;

security objectives of the TOE and its environment;

functional and assurance requirements to meet those security objectives; and

rationale demonstrating how the requirements meet the security objectives, and how the security objectives address the threats.

SECURITY EVALUATION SUMMARY

The U.S. Government Traffic-Filter Firewall Protection Profile For Medium Robustness Environments, Version 1.0 February 18, 2005 was generated from U.S. Government Firewall Protection Profile For Medium Robustness Environments, Version 1.0 October 28, 2003. This new profile extracted all of its requirements from the validated Medium Robustness Firewall Protection Profile currently available on the CCEVS web site. Due to multiple vendor requests, the Traffic-Filter portion of the Firewall protection profile was separated out as a standalone Medium Robustness Protection Profile. This new profile has all the basic and traffic-filter requirements from the original validated profile (PP_VID1016-PP.pdf) Vendors can claim compliance to this new profile just as they would to any other validated profile. The sunset clause that was attached to the original May 1, 2000, Traffic-Filter Firewall Protect Profile still applies.

The U.S. Government Traffic-Filter Firewall Protection Profile For Medium Robustness Environments, Version 1.1 January 09, 2006 is a maintenance update to remove "authenticated proxy users" from the Trusted Path (FTP_TRP) security functional requirement that was inadvertently overlooked during the generation of the U.S. Government Firewall Protection Profile For Medium Robustness Environments, Version 1.0 February 15 2005. The sunset clause that was attached to the original May 1, 2000, Traffic-Filter Firewall Protect Profile also applies to Version 1.0 February 15 2005.

The evaluation was performed under the Common Criteria Evaluation and Validation Scheme (CCEVS). The purpose of the evaluation was to demonstrate that the U.S. Government Firewall Protection Profile for Medium Robustness Environments meets the APE security assurance requirements according to the Common Criteria for Information Technology Security Evaluation, Version 2.1 and Part 2 of the Common Methodology for Information Technology Security Evaluation, Version 1.0. Validators on behalf of the CCEVS Validation Body monitored the evaluation carried out by COACT, Inc. CAFÉ Lab. The evaluation was completed on October 28, 2003. The results of the U.S. Government Firewall Protection Profile for Medium Robustness Environments evaluation can be found in U.S. Government Firewall Protection Profile for Medium Robustness Environments Validation Report prepared by the CCEVS Validation Team.

The evaluation was completed in October 2003. Results of the evaluation can be found in the Validation Report prepared by the National Information Assurance Partnership (NIAP) CCEVS-VR-03-0049.

ENVIRONMENTAL STRENGTHS

The evaluation of the U. S. Government Firewall Protection Profile for Medium Robustness Environments, Version 1.0 provides specification for environments in which TOEs with various levels of robustness are appropriate to meet Medium Robustness level of independently assured security requirements. The assurance requirements were chosen to be consistent with this goal.

This U.S. Government Approved Protection Profile is not assigned to any Validated Products

This U.S. Government Approved Protection Profile does not have any related Technical Decisions